A popular hybrid biometric terminal manufactured by ZKTeco has been found to have several critical vulnerabilities, including a significant flaw that allows for SQL injection via QR codes.
This discovery raises serious concerns about the security of biometric access control systems, which are widely used in various high-security environments.
https://cybersecuritynews.com/qr-code-sql-injection/